CAFT Safety
Stay Protected from CAFT Cyber Attacks
What is CAFT?

-
Initiate direct deposits, such as payroll or accounts payable
-
Collect payments such as loans, accounts receivable, strata/condo fees, donations, and club fees/dues

-
Check the CAFT Activity Log and History File information.
-
Contact Access Credit Union.
-
Change your CAFT password immediately.
-
If you have been compromised, follow the security
procedures of your company.
As a CAFT user, you are responsible for:
- Protecting your passwords and User IDs.
- Managing your CAFT transactions.
- Verifying file totals prior to file processing.
- Releasing files in a timely manner.
- Reviewing CAFT email notifications upon receipt.
- Reviewing your Activity Log.
- Reviewing your History File.
- Verifying all NAFT reports.
- Verifying account settlement to the settlement register (AFTR0010).
- Contacting us about any changes to Originator information.
- Immediately notifying us of any unusual activity.
What can I do to protect myself?
- Enhancing cyber security practices:
- Limit administrative rights on users' workstations to help prevent the inadvertent downloading of malware or other viruses.
- Ensure virus protection and security software and the operating systems/applications on your computer are updated regularly.
- Implementing internal controls (segregation of duties, dual authorization, setting CAFT limits).
- Reviewing transaction files for accuracy.
- Reviewing CAFT email notifications.
- Reconciling banking transactions daily.
- Talking to an insurance provider about Social Engineering coverage.

Best Practices

Use strong passwords
- 12 characters minimum
- Using a mix of alphanumeric characters (a-z, A-Z, 0-9)
- Using a mix of special characters: ‘ – , . /
- NOT using dictionary words or common names
- NOT using sequential or repeating numbers or letters such as abc, 123, 555
- NEVER re-using a password
- NEVER sharing your password with anyone


Use the right website
Please do this by typing in the legitimate CAFT site directly:
https://www.caft.paymentsanytime.com.


Keep your information safe


Don't click links

Cyber security is everyone’s responsibility!
Remember the following to keep your information safe:
-
Create a difficult to guess password using a combination of letters and numbers and never share your User ID or passwords.
-
Logout of any secure accounts, such as online banking, when finished. DO not just close the browser window.
-
Lock or logout of your computer when unattended.
-
Never access your Access Credit Union accounts or services using open/free WiFi (e.g. coffee shops, public libraries, hotels, etc.). If you must access these services in a public location, opt to use data instead.
-
Be mindful of phishing scams: never open an attachment or links from unexpected emails, even if they look legitimate.

Additional Resources
Contact Us
Contact us to learn more.
Additional Resources
Contact Us
Contact us to learn more.